|Check Point Reference:||CPAI-2014-2232|
|Date Published:||3 Dec 2014|
|Last Updated:||21 Nov 2017|
|Source:||IPS Research Team|
|Protection Provided by:||
|Who is Vulnerable?|| |
Adobe Acrobat Reader
|Vulnerability Description||PDF files may include a malformed version header. A remote attacker may use such a header inside PDF files to evade IPS inspection, in order to avoid detection of attacks against various PDF vulnerabilities.|
This protection will detect and block PDF files containing a malformed version header.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update.For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.
This protection's log will contain the following information:
Attack Name: Adobe Products Violation.
Attack Information: Malformed PDF Version Header